The new Information Management Policy suite came into effect on 5 May 2025 across the Monash Group.

The suite sets out clear, consistent requirements for how information must be managed at Monash - across its creation, storage, access, retention and disposal. The Policy suite applies to all staff, students and associates (where applicable), and supports compliance with regulatory obligations, internal audit recommendations and operational needs across the Monash Group.

The suite includes:

• Information Management Policy (new)
• Information Governance and Recordkeeping Procedure (new)
• Data Protection and Privacy Procedure (revised)
• Data Protection and Privacy Schedule - Monash University Indonesia (administrative updates)

Key features of the new policy suite:

• Applies across the Monash Group: Addresses previous gaps in scope coverage and clarifies applicability across all Monash entities, supporting a more coordinated approach to information management.
• Clarity of roles and accountability: Defines responsibilities at each stage of the information lifespan to promote consistent and accountable practices.
• Supports risk and compliance: Provides clear guidance on secure and timely disposal, reducing risks associated with over-retention and unmanaged information.
• Freedom Of Information integration: Freedom of Information (FOI) obligations are now embedded within the suite. While the standalone FOI Policy and FOI Procedure have been rescinded, FOI processes remain unchanged and continue to meet legislative requirements.

The Information Management Policy suite also aligns with existing Monash policies, procedures and schedules relating to cyber security, information security and classification, and artificial intelligence operations.